- https://www.acunetix.com/blog/articles/band-xml-external-entity-oob-xxe/ XXE OOB Payload
- https://resources.infosecinstitute.com/finding-and-exploiting-xxe-xml-external-entities-injection/
- https://github.com/xmendez/wfuzz
- https://github.com/aboul3la/Sublist3r
- https://github.com/guelfoweb/knock
- https://github.com/JohnHammond/ctf-katana Great tips/helpers for CTFs
- https://webhook.site Allows you to easily test webhooks and other types of HTTP requests
- https://appsecwiki.com/#/
- https://medium.com/@20matan/hacker101-challenges-writeup-65bdad15e438 hacker101 challegnes writeup